user-setup (1.48ubuntu1) saucy; urgency=low
* Resynchronise with Debian. Remaining changes:
- Add the initial user to the adm, lpadmin, and sambashare groups too.
Do not add them to the audio, video, floppy, netdev, powerdev,
scanner, or bluetooth groups.
- Default passwd/root-login to false.
- Create the spu group on powerpc/ps3 and powerpc/cell.
- Make is_system_user always return false if OVERRIDE_SYSTEM_USER is
set.
- Add preseedable passwd/auto-login question; if set to true, configure
gdm, kdm, lxdm, and lightdm for automatic login. Add
passwd/auto-login-backup question which backs up the previous contents
of the files as well.
- Ask whether the user wants to encrypt their home directory.
- Allow forcing the encrypted home option.
- If a user requests an encrypted-home, we must have their login
passphrase, in order to wrap their mount passphrase; it's
fundamentally incompatible to preseed encrypted-home AND a crypted
password; if this happens, send the user back to password selection.
- Zero out swap devices at the end of install when encryption is
enabled.
- Provide a progress message for wiping swap space.
- If user-setup/allow-password-empty is preseeded to true, allow empty
passwords.
- Disable installation of pre-pkgsel.d/10kdesudo; it does nothing for
Ubuntu, and causes a confusing message that worries some people.
- Add weak password detection (purely length-based for now, matching
partman-crypto).
- Consider a password of '!' in shadow for root to be unset.
- Don't restrict guest login from login screen if autologin was
configured, just restrict autologin for guest specifically.
- If OVERRIDE_ALREADY_ENCRYPTED_SWAP is set in the environment, assume
that encrypted swap has already been set up rather than re-creating
and re-zeroing swap.

user-setup (1.47ubuntu1) raring; urgency=low
* Resynchronise with Debian. Remaining changes:
- Add the initial user to the adm, lpadmin, and sambashare groups too.
Do not add them to the audio, video, floppy, netdev, powerdev,
scanner, or bluetooth groups.
- Default passwd/root-login to false.
- Create the spu group on powerpc/ps3 and powerpc/cell.
- Make is_system_user always return false if OVERRIDE_SYSTEM_USER is
set.
- Add preseedable passwd/auto-login question; if set to true, configure
gdm, kdm, lxdm, and lightdm for automatic login. Add
passwd/auto-login-backup question which backs up the previous contents
of the files as well.
- Ask whether the user wants to encrypt their home directory.
- Allow forcing the encrypted home option.
- If a user requests an encrypted-home, we must have their login
passphrase, in order to wrap their mount passphrase; it's
fundamentally incompatible to preseed encrypted-home AND a crypted
password; if this happens, send the user back to password selection.
- Zero out swap devices at the end of install when encryption is
enabled.
- Provide a progress message for wiping swap space.
- If user-setup/allow-password-empty is preseeded to true, allow empty
passwords.
- Disable installation of pre-pkgsel.d/10kdesudo; it does nothing for
Ubuntu, and causes a confusing message that worries some people.
- Add weak password detection (purely length-based for now, matching
partman-crypto).
- Consider a password of '!' in shadow for root to be unset.
- Don't restrict guest login from login screen if autologin was
configured, just restrict autologin for guest specifically.
- If OVERRIDE_ALREADY_ENCRYPTED_SWAP is set in the environment, assume
that encrypted swap has already been set up rather than re-creating
and re-zeroing swap.

Available diffs

user-setup (1.46ubuntu1) quantal; urgency=low
* Resynchronise with Debian. Remaining changes:
- Add the initial user to the adm, lpadmin, and sambashare groups too.
Do not add them to the audio, video, floppy, netdev, powerdev,
scanner, or bluetooth groups.
- Default passwd/root-login to false.
- Create the spu group on powerpc/ps3 and powerpc/cell.
- Make is_system_user always return false if OVERRIDE_SYSTEM_USER is
set.
- Add preseedable passwd/auto-login question; if set to true, configure
gdm, kdm, lxdm, and lightdm for automatic login. Add
passwd/auto-login-backup question which backs up the previous contents
of the files as well.
- Ask whether the user wants to encrypt their home directory.
- Allow forcing the encrypted home option.
- If a user requests an encrypted-home, we must have their login
passphrase, in order to wrap their mount passphrase; it's
fundamentally incompatible to preseed encrypted-home AND a crypted
password; if this happens, send the user back to password selection.
- Zero out swap devices at the end of install when encryption is
enabled.
- Provide a progress message for wiping swap space.
- If user-setup/allow-password-empty is preseeded to true, allow empty
passwords.
- Disable installation of pre-pkgsel.d/10kdesudo; it does nothing for
Ubuntu, and causes a confusing message that worries some people.
- Add weak password detection (purely length-based for now, matching
partman-crypto).
- Consider a password of '!' in shadow for root to be unset.
- Don't restrict guest login from login screen if autologin was
configured, just restrict autologin for guest specifically.
- If OVERRIDE_ALREADY_ENCRYPTED_SWAP is set in the environment, assume
that encrypted swap has already been set up rather than re-creating
and re-zeroing swap.

Available diffs

user-setup (1.42ubuntu3) precise; urgency=low
* user-setup-apply:
- Revert the change from 1.42ubuntu2. We'll handle this in ubiquity
instead; in d-i, it seems to be too difficult to get right without the
aid of script libraries from cryptsetup.
- If OVERRIDE_ALREADY_ENCRYPTED_SWAP is set in the environment, assume
that encrypted swap has already been set up rather than re-creating
and re-zeroing swap (LP: #979350).
-- Colin Watson <email address hidden> Thu, 19 Apr 2012 02:46:54 +0100

Available diffs

user-setup (1.42ubuntu1) precise; urgency=low
* Resynchronise with Debian. Remaining changes:
- Add the initial user to the adm, lpadmin, and sambashare groups too.
Do not add them to the audio, video, floppy, netdev, powerdev,
scanner, or bluetooth groups.
- Default passwd/root-login to false.
- Create the spu group on powerpc/ps3 and powerpc/cell.
- Make is_system_user always return false if OVERRIDE_SYSTEM_USER is
set.
- Add preseedable passwd/auto-login question; if set to true, configure
gdm, kdm, lxdm, and lightdm for automatic login. Add
passwd/auto-login-backup question which backs up the previous contents
of the files as well.
- Ask whether the user wants to encrypt their home directory.
- Allow forcing the encrypted home option.
- If a user requests an encrypted-home, we must have their login
passphrase, in order to wrap their mount passphrase; it's
fundamentally incompatible to preseed encrypted-home AND a crypted
password; if this happens, send the user back to password selection.
- Zero out swap devices at the end of install when encryption is
enabled.
- Provide a progress message for wiping swap space.
- If user-setup/allow-password-empty is preseeded to true, allow empty
passwords.
- Disable installation of pre-pkgsel.d/10kdesudo; it does nothing for
Ubuntu, and causes a confusing message that worries some people.
- Add weak password detection (purely length-based for now, matching
partman-crypto).
- Consider a password of '!' in shadow for root to be unset.
- Don't restrict guest login from login screen if autologin was
configured, just restrict autologin for guest specifically.
* Update Ubuntu-specific translations from Launchpad.

Available diffs

user-setup (1.41ubuntu1) precise; urgency=low
* Resynchronise with Debian. Remaining changes:
- Add the initial user to the adm, lpadmin, and sambashare groups too.
Do not add them to the audio, video, floppy, netdev, powerdev,
scanner, or bluetooth groups.
- Default passwd/root-login to false.
- Create the spu group on powerpc/ps3 and powerpc/cell.
- Make is_system_user always return false if OVERRIDE_SYSTEM_USER is
set.
- Add preseedable passwd/auto-login question; if set to true, configure
gdm, kdm, lxdm, and lightdm for automatic login. Add
passwd/auto-login-backup question which backs up the previous contents
of the files as well.
- Ask whether the user wants to encrypt their home directory.
- Allow forcing the encrypted home option.
- If a user requests an encrypted-home, we must have their login
passphrase, in order to wrap their mount passphrase; it's
fundamentally incompatible to preseed encrypted-home AND a crypted
password; if this happens, send the user back to password selection.
- Zero out swap devices at the end of install when encryption is
enabled.
- Provide a progress message for wiping swap space.
- If user-setup/allow-password-empty is preseeded to true, allow empty
passwords.
- Disable installation of pre-pkgsel.d/10kdesudo; it does nothing for
Ubuntu, and causes a confusing message that worries some people.
- Add weak password detection (purely length-based for now, matching
partman-crypto).
- Consider a password of '!' in shadow for root to be unset.
- Don't restrict guest login from login screen if autologin was
configured, just restrict autologin for guest specifically.
* Update Ubuntu-specific translations from Launchpad.

Available diffs

user-setup (1.39ubuntu1) precise; urgency=low
* Merge from Debian testing, remaining changes:
- Add the initial user to the adm, lpadmin, and sambashare groups
too. Do not add them to the audio, video, floppy, netdev, powerdev,
scanner, or bluetooth groups.
- Default passwd/root-login to false.
- Create the spu group on powerpc/ps3 and powerpc/cell.
- Make is_system_user always return false if OVERRIDE_SYSTEM_USER is
set.
- Add preseedable passwd/auto-login question; if set to true, configure
gdm, kdm, lxdm, and lightdm for automatic login. Add
passwd/auto-login-backup question which backs up the previous contents
of the files as well.
- Ask whether the user wants to encrypt their home directory.
- Allow forcing the encrypted home option.
- user-setup-ask: if a user requests an encrypted-home, we must have
their login passphrase, in order to wrap their mount passphrase; its
fundamentally incompatible to preseed encrypted-home AND a crypted
password; if this happens, send the user back to the password
selection in the user-setup state machine
- Zero out swap devices at the end of install when encryption is
enabled.
- Provide a progress message for wiping swap space.
- If user-setup/allow-password-empty is preseeded to true, allow empty
passwords.
- Disable installation of pre-pkgsel.d/10kdesudo; it does nothing for
Ubuntu, and causes a confusing message that worries some people.
- Add weak password detection (purely length-based for now, matching
partman-crypto).
- Consider a password of '!' in shadow for root to be unset.
- Update Ubuntu-specific translations from Launchpad.
- Don't restrict guest login from login screen if autologin was configured,
just restrict autologin for guest specifically.
* Dropped changes:
- Add the initial user to the dip group after all, not dialout; per
Debian bug #568895, dip is for pppd and dialout is for raw tty access
which users don't need.
- Don't set up the admin group or add the user to it; the sudo package
now always sets up the sudo group on install, so we can as well use
this group as the admin group. This will be inconsistent with
previous Ubuntu releases, but consistent with Debian and compatible
with sudo.

Available diffs

user-setup (1.28ubuntu1) lucid; urgency=low
* Resynchronise with Debian. Remaining changes:
- Add the initial user to the adm, dip, lpadmin, and sambashare groups
too, and to the admin group if no root password is set. Do not add
them to the audio, video, floppy, dip, netdev, powerdev, scanner, or
bluetooth groups.
- Allow the admin group to gain root privileges using sudo.
- Default passwd/root-login to false.
- Create the spu group on powerpc/ps3 and powerpc/cell.
- Make is_system_user always return false if OVERRIDE_SYSTEM_USER is
set.
- Add preseedable passwd/auto-login question; if set to true, configure
gdm and kdm for automatic login. Add passwd/auto-login-backup question
which backs up the previous contents of the files as well.
- Ask whether the user wants to encrypt their home directory.
- Zero out swap devices at the end of install when encryption is
enabled.
- If user-setup/allow-password-empty is preseeded to true, allow empty
passwords.
- Disable installation of pre-pkgsel.d/10kdesudo; it does nothing for
Ubuntu, and causes a confusing message that worries some people.
- Add weak password detection (purely length-based for now, matching
partman-crypto).
- Consider a password of '!' in shadow for root to be unset.
-- Evan Dandrea <email address hidden> Wed, 11 Nov 2009 13:51:01 +0000

Available diffs

user-setup (1.27ubuntu1) karmic; urgency=low
* Resynchronise with Debian. Remaining changes:
- Add the initial user to the adm, dip, lpadmin, and sambashare groups
too, and to the admin group if no root password is set. Do not add
them to the audio, video, floppy, dip, netdev, powerdev, or scanner
groups.
- Allow the admin group to gain root privileges using sudo.
- Default passwd/root-login to false.
- Create the spu group on powerpc/ps3 and powerpc/cell.
- Make is_system_user always return false if OVERRIDE_SYSTEM_USER is
set.
- Add preseedable passwd/auto-login question; if set to true, configure
gdm and kdm for automatic login. Add passwd/auto-login-backup question
which backs up the previous contents of the files as well.
- Ask whether the user wants to encrypt their home directory.
- If user-setup/allow-password-empty is preseeded to true, allow empty
passwords.
- Disable installation of pre-pkgsel.d/10kdesudo; it does nothing for
Ubuntu, and causes a confusing message that worries some people.
- Add weak password detection (purely length-based for now, matching
partman-crypto).
- Consider a password of '!' in shadow for root to be unset.
- Allow underscores in usernames, matching change in adduser
3.110ubuntu3.

Available diffs

user-setup (1.26ubuntu1) karmic; urgency=low
* Resynchronise with Debian. Remaining changes:
- Add the initial user to the adm, dip, lpadmin, and sambashare groups
too, and to the admin group if no root password is set. Do not add
them to the audio, video, floppy, dip, netdev, powerdev, or scanner
groups.
- Allow the admin group to gain root privileges using sudo.
- Default passwd/root-login to false.
- Create the spu group on powerpc/ps3 and powerpc/cell.
- Make is_system_user always return false if OVERRIDE_SYSTEM_USER is
set.
- Add preseedable passwd/auto-login question; if set to true, configure
gdm and kdm for automatic login. Add passwd/auto-login-backup question
which backs up the previous contents of the files as well.
- Ask whether the user wants to encrypt their home directory.
- If user-setup/allow-password-empty is preseeded to true, allow empty
passwords.
- Disable installation of pre-pkgsel.d/10kdesudo; it does nothing for
Ubuntu, and causes a confusing message that worries some people.
- Add weak password detection (purely length-based for now, matching
partman-crypto).
- Consider a password of '!' in shadow for root to be unset.
* Rearrange our templates file to put all Ubuntu-specific entries at the
end, to simplify future merges.
* Drop compatibility for passwd/allow-password-empty, as promised in the
changelog for 1.23ubuntu14.

Available diffs

user-setup (1.23ubuntu20) jaunty; urgency=low
* Add preseedable passwd/auto-login-backup question; if set (e.g. to
"oem") and passwd/auto-login=true, this backs up the previous contents
of the configuration files (e.g. to /etc/kde4/kdm/kdmrc.oem). This can
be used by oem-config to recover the old contents of the configuration
files later (LP: #361272).
-- Colin Watson <email address hidden> Thu, 16 Apr 2009 14:28:56 +0100

Available diffs

user-setup (1.23ubuntu1) jaunty; urgency=low
[ Evan Dandrea ]
* Do not force chpasswd to md5 crypted passwords (LP: #51551).
[ Colin Watson ]
* Resynchronise with Debian. Remaining changes:
- Add the initial user to the adm, dip, lpadmin, and sambashare
groups too, and to the admin group if no root password is set. Do not
add them to the audio, video, floppy, dip, netdev, or powerdev groups.
- Allow the admin group to gain root privileges using sudo.
- Default passwd/root-login to false.
- Create the spu group on powerpc/ps3 and powerpc/cell.
- Make is_system_user always return false if OVERRIDE_SYSTEM_USER is
set.
- Add preseedable passwd/auto-login question; if set to true, configure
gdm and kdm for automatic login.
- Ask whether the user wants to set up an encrypted private directory.
- If passwd/allow-password-empty is preseeded to true, allow empty
passwords.

Available diffs

user-setup (1.20ubuntu3) intrepid; urgency=low
* debian/user-setup-udeb.templates: Drop the initial user from some groups
which have better dynamic replacements, in an effort to reduce the misuse
of groups for assigning privileges:
- audio, video, floppy: Hal assigns ACLs for local foreground console
users; remote users should not have these. 'cdrom' has to stay for
apt-cdrom (Debian #464899), 'plugdev' has to stay for static mountpoints
created by the installer.
- dip: Not used anywhere in Ubuntu.
See intrepid-device-permissions spec.
-- Martin Pitt <email address hidden> Mon, 21 Jul 2008 16:10:17 +0200